Опубликовано: 21 фев. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 3.5
CVSS3: 5.4
Описание
Cross-site scripting (XSS) vulnerability in db_central_columns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | released | 4:4.6.6-5ubuntu0.5 |
| cosmic | ignored | end of life |
| devel | not-affected | 4:4.9.2+dfsg1-1 |
| disco | ignored | end of life |
| eoan | DNE | |
| esm-apps/bionic | released | 4:4.6.6-5ubuntu0.5 |
| esm-apps/focal | not-affected | 4:4.9.2+dfsg1-1 |
| esm-apps/jammy | not-affected | 4:4.9.2+dfsg1-1 |
| esm-apps/xenial | released | 4:4.5.4.12ubuntu2.1+esm2 |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 53%
0.00302
Низкий
3.5 Low
CVSS2
5.4 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.4
nvd
больше 7 лет назад
Cross-site scripting (XSS) vulnerability in db_central_columns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
CVSS3: 5.4
debian
больше 7 лет назад
Cross-site scripting (XSS) vulnerability in db_central_columns.php in ...
CVSS3: 5.4
github
около 3 лет назад
phpMyAdmin Cross-site scripting (XSS) vulnerability in central columns feature
EPSS
Процентиль: 53%
0.00302
Низкий
3.5 Low
CVSS2
5.4 Medium
CVSS3